icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Kerio MailServer < 6.6.2 Patch 3 / 6.7.0 Patch 1 XSS

Medium

Synopsis

The remote mail server is vulnerable to cross-site scripting attacks.

Description

The remote Kerio MailServer is earlier than 6.6.2 Patch 3 / 6.7.0 Patch 1. Such versions are reportedly affected by a cross-site scripting vulnerability in the 'Integration' page.

Solution

Upgrade to Kerio MailServer 6.6.2 Patch 3 / 6.7.0 Patch 1